data/common.yaml

   1 ---
   2
   3 lookup_options:
   4   # with merge: unique entries in other hiera sources add to the array
   5   resolv::searchpaths:
   6     merge: unique
   7   apt::sources::debian::location:
   8     merge: unique
   9
  10 # == class parameters
  11 #####################
  12 resolv::nameservers: []
  13 resolv::searchpaths: ['debian.org']
  14 staticsync::user: 'staticsync'
  15 staticsync::basedir: '/srv/static.debian.org'
  16 exim::smarthost: 'mailout.debian.org'
  17 postfix::smarthost: 'mailout.debian.org'
  18 roles::dns_primary::allow_access:
  19   # easydns
  20   - '64.68.200.91'
  21   - '205.210.42.80'
  22   # rcode0
  23   - '83.136.34.0/27'
  24   - '2a02:850:8::/47'
  25   # netnod
  26   - '192.71.80.0/24'
  27   - '192.36.144.222'
  28   - '192.36.144.218'
  29   - '194.146.105.24'
  30   - '194.146.105.25'
  31   - '2a01:3f0:0:27::24'
  32   - '2a01:3f0:0:28::25'
  33 # bacula
  34 #
  35 bacula::director::db_address: 'postgresql-manda-01.debian.org'
  36 bacula::director::db_port:    5432
  37 bacula::director::db_sslca:   '/etc/ssl/debian/certs/ca.crt'
  38
  39
  40 # == other variables
  41 #####################
  42 allow_dns_query: []
  43 role_config__mirrors:
  44   mirror_basedir_prefix: '/srv/mirrors/'
  45 role_config__syncproxy:
  46   mirror_basedir_prefix: '/srv/mirrors/'
  47 samhain_recipients:
  48   - 'debian-archive-debian-samhain-reports@master.debian.org'
  49   - 'debian-admin@ftbfs.de'
  50   - 'weasel@debian.org'
  51   - 'zumbi@oron.es'
  52 root_mail_alias:
  53   - 'debian-admin@debian.org'
  54 paths:
  55   letsencrypt_dir: '/srv/puppet.debian.org/from-letsencrypt'
  56   auto_certs_dir: '/srv/puppet.debian.org/ca/RESULT/certs'
  57   auto_clientcerts_dir: '/srv/puppet.debian.org/ca/RESULT/clientcerts'
  58 apt::sources::debian::location: 'https://deb.debian.org/debian/'
  59
  60
  61 # all of these should be retired in favour of including the class role
  62 # with the host. weasel, 2019-09
  63 roles:
  64   postgres_backup_server:
  65     # XXX - used by ferm templates/defs.conf.erb
  66     - backuphost.debian.org
  67     - storace.debian.org
  68   postgresql_server:
  69     # postgresql instances not managed by puppet otherwise
  70     - bmdb1.debian.org
  71     - buxtehude.debian.org
  72     - danzi.debian.org
  73     - fasolo.debian.org
  74     - lw07.debian.org
  75     - melartin.debian.org
  76     - postgresql-manda-01.debian.org
  77     - sallinen.debian.org
  78     - seger.debian.org
  79     - snapshotdb-manda-01.debian.org
  80     - vittoria.debian.org
  81
  82 classes:
  83   - base::includes